A directory's ACL is inherited by new subdirectories. Thus, the access-rights are granted to the entire tree.

The ACL Right: "Bypass Traverse Checking." Which is set by default, enables entry/access rights to a directory and any object below in this tree, so long as you have access to that object. E.g. with the "Bypass Traverse Checking" ACL set, you can "CD" to directories beneath it (providing you know the pathname). If you want to lock an entire directory structure, disable this attribute.

Be aware that if a program connects via a "named pipe," the owner of the other end of the pipe has full access rights and can use them to run a malicious program. This can totally subvert Windows NT security. Windows NT native network sharing services, including file and printer sharing, and named pipes (which support many forms of RPC), can be isolated by binding these services to the NetBEUI protocol. If you need to use NetBIOS-over-TCP/IP, block UDP and TCP port numbers 137-139.

Install the Windows backup utility "E\valueadd\msft\ntback ".

To allow your Windows-XP computer to be remotely controlled see: System Properties->Advanced->Remote Control.

To see your Windows username use set or net use or open a DOS window and type:

echo %username%

This will show you who you are logged in as. Or you can get "Whoami.exe" from http://www.microsoft.com/windows2000/techinfo/reskit/tools/existing/whoami-o.asp

Never allow anonymous shares

Microsoft Outlook (Express) does not physically delete mails, it copies them to trash when deleted, but trash is emptied the mails remain in both the original folder an the trash folder, they may be viewed using a text editor. This could possibly be used to read confidential or private mails and effects several versions of Outlook. Deleted mails may be permanently deleted by using the "Clean Up Now" functionality under "Tools" (or "Files->Folders->Compact" in Outlook Express)..

System administrators should also block TCP 139 at the firewall

Windows uses UDP 135: the RPC endpoint mapper. Attackers/pranksters can send a message over TCP 139 and invoke the messenger service via the end point mapper. The capability of using UDP 135 is built into "net send". If you have NetBIOS bound to your interface, net send will, by default, pipe messages over SMB to TCP 139. But if NetBIOS is not bound to the interface, net send will use UDP 135 instead. It takes the "net" command longer, but it will still work. Spammers know that system administrators may close TCP 139, and use the undocumented back door.

How Microsoft handles errors
Errors are sent to http://oca.Microsoft.com. You can analyse
To see what data Microsoft collects from error reports: http://watson.microsoft.com/dw/1033/dcp.asp
Advise on blue-screen stop errors www.microsoft.com/windowsxp/home/using/howto/gettingstarted/guide/troubleshoot.asp
Help on error and fault messages: support.microsoft.com
Add "/safeboot:minimal /sos/bootlog" or "/safeboot:network /sos/bootlog" to c:\boot.ini.

Check Public/shared computer when you login to .NET
Small memory dump only takes 2mb, kernel takes 50mb, complete needs more than ram size.

If there is a delay when browsing this can be caused by a bug in XP. Every time you browse the network. This is because XP automatically checks if that computer has any scheduled tasks. To disable it access the key: HKEY_LOCAL_MACHINE/Software/Microsoft/Windows/CurrentVersion/Explorer/
RemoteComputer/NameSpace/{D6277990-4C6A-11CF-8D87-00AA0060F5BF}. Delete this key and browsing should improve.

To disable indexing and improve performance open: My Computer c:->properties then uncheck Enable Indexing. If you don't normally search .ZIP and .CAB files. By default Windows searches the contents of all archived files. O (de)activate the searching of .CAB and .ZIP files: